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Amendments to the Claims; 

This listing of claims will replace all prior versions, and listings, of claims 
in the application: 

Listing of Claims: 

1. (Currently Amended) A method for distributing encryption keys 
in WLAN, said WLAN comprising h aving an AP and a plurality of mobile hosts storing 
identification information, said-the mobile hosts communicating with said-the AP through 
wireless channels, said the AP and the extemal network connecting with the 
authentication device which authenticates smd -the m obile hostst^ satd -the authentication 
device storing identification information of all mobile hosts, smd -the method comprising 
the following steps: 

(1) a mobile host sending an authentication request containing 
identification information to the authentication device for identity authentication; 

(2) the authentication device authenticating the mobile host according 
to identification information contained in the authentication request, and if the 
authentication fails, the authentication device sending an ACCEPT_REJECT message to 
the mobile host via the APt. and if the authentication succeeds, the authentication device 
sending key-related information Ml to AP and sending an— a message comprising 
ACCESS_ACCEPT information to the mobile host via the AP ?. and if containing key- 
related information M2, said message being encrypted: and 

(3) AP obtaining the key from the key-related information Ml sent 
from the authentication device, and the mobile host obtaining the key from said message 
sent from the authentication device via the AP. 
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2. (Currently Amended) Ar -The m ethod for distributing encryption 
keys in WLAN according to o f claim 1^ wherein said information Ml is the 
corresponding property information searched by said authentication device according to 
the identification information contained in the authentication request, said AP obtains the 
key through generating it from said property information with a key generation 
algorithm; whereas said mobile host obtains the key through generating it fi"om property 
information stored in itself with the same key generation algorithm after said mobile host 
receives said message comprising ACCESS ACCEPT information forwarded by AP. 

3. (Currently Amended) Ar- The method for distributing encryption 
keys in WLAN according to o f claim Ij wherein said information Ml is the 
corresponding property information searched by said authentication device according to 
the identification information contained in the authentication request, said AP obtains the 
key through generating it with a key generation algorithm; said information M2 is the key 
generated and encrypted by AP with said property information and then sent to said 
mobile host along with said ACCESS_ACCEPT message, said mobile host obtains the 
key through decrypting information M2 with said property information. 

4. (Currently Amended) A -The method for distributing encryption 
keys in WLAN according to of claim 1^ wherein said information Ml is the key 
generated from said property information corresponding to the identification information 
contained in said authentication request by said authentication device with a key 
generation algorithm, said mobile host obtains the key through generating it from said 
property information stored in itself with the same key generation algorithm after 
receiving said ACCESS^ACCEPT message. 



4 



Express Mail No.: EV335395908US 
International Application No.: PCT/CN03/00106 
International Filing Date: January 30, 2003 
Preliminary Amendment Accompanying 
Substitute Specification 

5. (Currently Amended) A -The m ethod for distributing encryption 
keys in WLAN according to of claim 1; wherein said information Ml and M2 are the key 
generated from said property information corresponding to the identification information 
contained in said authentication request by said authentication device with a key 
generation algorithm, said information M2 is encrypted with said property information 
and then sent to said mobile host along with said ACCESS_ACCEPT message, said 
mobile host obtains the key through decrypting said information M2 with the property 
information stored in itself after receiving said ACCESS_ACCEPT message. 

6. (Currently Amended) A- The method for distributing encryption 
keys in WLAN according to any of claim 1 to 5, wherein when receiving the-data packets 
encrypted with Ae-a^key sent from said -the m obile host, said AP updates the key 
periodically or ap e riodicolly t hrough the following steps of: 

(al) said AP generating a random number and generating a new key 
from said random number with any key generation algorithm; 

(bl) said AP adding said random number to a key update message and 
then sending said message to said mobile host; 

(cl) when receiving said key update message, said mobile host 
generating a new key from said random number contained in said key update message 
with the same key generation algorithm as that in step (al); 

(dl) said mobile host encrypting the data packets to be sent to AP with 
said new key and then sending the encrypted data packets to AP, during the encryption 
process, said mobile host adding an encryption identifier to said data packets and 
changing the value of said encryption identifier to indicate the communication key has 
been changed; and 

(el) when receiving the data packets from said mobile host, said AP 
determines whether to change the key according to value of said encryption identifier. 
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7. (Currently Amended) A -The m ethod for distributing encryption 
keys in WLAN according to any o f claim 1 to 5, wherein in order to achieve encryption 
communication with the new key, when receiving the data packets encrypted with the key 
sent from said mobile host, said AP updates the key periodically or aperiodically through 
the following steps of: 

(a2) said AP generating a new key in any way and encrypting said new 
key with the present key; 

(b2) said AP adding the encrypted key to the key update message and 
then sending said message to said mobile host; 

(c2) when receiving said key update message, said mobile host 
decrypting the new key contained in said key update message with the present key so as 
to obtain said new key; 

(d2) said mobile host encrypting the data packets to be sent to AP with 
said new key and then sending the encrypted data packets to AP, during the encryption 
process, said mobile host adding an encryption identifier to said data packets and 
changing the value of said encryption identifier to indicate the conmiunication key has 
been changed; and 

(e2) when receiving the data packets from said mobile host, said AP 
determines whether to change the key according to value of said encryption identifier. 

8. (Currently Amended) Ar -The m ethod for distributing encryption 
keys in WLAN according to any o f claim 1 to 5, wherein when receiving the data packets 
encrypted with the key sent from said mobile host, said AP updates the key periodically 
or aperiodically through the following steps of: 

(a3) said Authentication device generating a random number which is 
used to generate a new key with the key generation algorithm, and then said 
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authentication device sending said new key to AP, and sending said random number to 
said mobile host via AP; 

(b3) said AP sending said key update message to said mobile host after 
receiving said new key; 

(c3) when receiving said random number from said authentication 
device and said key update message from AP, said mobile host generating a new key 
from said random number with the same key generation algorithm as that in step (a3); 

(d3) said mobile host encrypting the data packets to be sent to AP with 
said new key and then sending the encrypted data packets to AP, during the encryption 
process, said mobile host adding an encryption identifier to said data packets and 
changing the value of said encryption identifier to indicate the communication key has 
been changed; and 

(e3) when receiving the data packets from said mobile host, said AP 
determines whether to change the key according to value of said encryption identifier. 

9. (Currently Amended) A -The m ethod for distributing encryption 
keys in WLAN according to any of claim 1 to 5, wherein in order to achieve encryption 
conmiunication with the new key, when receiving the data packets encrypted with the key 
sent from said mobile host, said AP updates the key periodically or aperiodically through 
the following steps of: 

(a4) said AP generating a new key in any way and encrypting said new 
key with the present key, then sending said new key to said AP, whereas sending the 
encrypted new key to said mobile host via said AP; 

(b4) after receiving said new key, said AP sending a key update 
message to said mobile host; 
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(c4) when receiving the encrypted key from said authentication device 
and said key update message from said AP, said mobile host decrypting the encrypted 
key with the present key to obtain a new key; 

(d4) said mobile host encrypting the data packets to be sent to AP with 
said new key and then sending the encrypted data packets to AP, during the encryption 
process, said mobile host adding an encryption identifier to said data packets and 
changing the value of said encryption identifier to indicate the communication key has 
been changed; and 

(e4) when receiving the data packets from said mobile host, said AP 
determines whether to change the key according to value of said encryption identifier. 

10. (Currently Amended) A -The method for distributing encryption 
keys in WLAN according to any of claim l-te-^^ wherein said authentication device is an 
authentication server installed in said extemal network. 

11. (Currently Amended) A -The m ethod for distributing encryption 
keys in WLAN according to of claim 67 wherein said authentication device is an 
authentication server installed in said extemal network. 

12. (Currently Amended) A -The method for distributing encryption 
keys in WLAN according to of claim 7^ wherein said authentication device is an 
authentication server installed in said extemal network. 

13. (Currently Amended) Ar -The method for distributing encryption 
keys in WLAN according to of claim 87 wherein said authentication device is an 
authentication server installed in said extemal network. 
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14. (Currently Amended) A ^The m ethod for distributing encryption 
keys in WLAN according to of claim 9; wherein said authentication device is an 
authentication server installed in said external network. 

15. (Currently Amended) A^ The m ethod for distributing encryption 
keys in WLAN according to any of claim 1 to 5, wherein said authentication device is a 
wireless gateway that connects said A? with said extemal network. 

16. (Currently Amended) A -The m ethod for distributing encryption 
keys in WLAN according to o f claim 6^ wherein said authentication device is a wireless 
gateway that connects said AP with said extemal network. 

17. (Currently Amended) A -The m ethod for distributing encryption 
keys in WLAN according to of claim 7^ wherein said authentication device is a wireless 
gateway that connects said AP with said extemal network. 

18. (Currently Amended) Ar -The m ethod for distributing encryption 
keys in WLAN according to o f claim 8^ wherein said authentication device is a wireless 
gateway that connects said AP with said extemal network. 

19. (Currently Amended) A -The method for distributing encryption 
keys in WLAN according to of claim 9^ wherein said authentication device is a wireless 
gateway that connects said AP with said extemal network. 

20. (Currently Amended) A- The method for distributing encryption 
keys in WLAN according to any of claim 1 to 5, wherein said authentication device 
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includes said wireless gateway and said authentication server installed in extemal 
network. 

21. (Currently Amended) Ar -The m ethod for distributing encryption 
keys in WLAN according to of claim 6^ wherein said authentication device includes said 
wireless gateway and said authentication server installed in extemal network. 

22. (Currently Amended) A -The m ethod for distributing encryption 
keys in WLAN according to of claim 7^ wherein said authentication device includes said 
wireless gateway and said authentication server installed in extemal network. 

23. (Currently Amended) A -The m ethod for distributing encryption 
keys in WLAN according to of claim 8^ wherein said authentication device includes said 
wireless gateway and said authentication server installed in extemal network. 

24. (Currently Amended) A -The m ethod for distributing encryption 
keys in WLAN according to of.claim 9t wherein said authentication device includes said 
wireless gateway and said authentication server installed in extemal network. 
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